Back to search
CVE-2003-0413
Published: Jun 11, 2003
Modified: Aug 8, 2024
PUBLISHED
Description
Cross-site scripting (XSS) vulnerability in the webapps-simple sample application for (1) Sun ONE Application Server 7.0 for Windows 2000/XP or (2) Sun Java System Web Server 6.1 allows remote attackers to insert arbitrary web script or HTML via an HTTP request that generates an "Invalid JSP file" error, which inserts the text in the resulting error message.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
http://www.spidynamics.com/sunone_alert.html
x_refsource_MISC
55221
vendor-advisory
x_refsource_SUNALERT
201009
vendor-advisory
x_refsource_SUNALERT
sunone-http-error-xss(12095)
vdb-entry
x_refsource_XF
57605
vendor-advisory
x_refsource_SUNALERT
N-103
third-party-advisory
government-resource
x_refsource_CIAC
20030526 Multiple Vulnerabilities in Sun-One Application Server
mailing-list
x_refsource_BUGTRAQ
7710
vdb-entry
x_refsource_BID
1000610
vendor-advisory
x_refsource_SUNALERT
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now